This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP AppSec Asia 2007"
(→Talk Session I: Changing Faces in Web Attacks) |
|||
Line 96: | Line 96: | ||
---- | ---- | ||
− | ====Jeremiah Grossman | + | ====Jeremiah Grossman==== |
+ | '''Founder and CTO, WhiteHat Security) (2:00pm-2:30pm)''' | ||
'''Talk Title''': '''''The Next Challenge to Web Security: Business Logic Flaws''''' | '''Talk Title''': '''''The Next Challenge to Web Security: Business Logic Flaws''''' | ||
Line 104: | Line 105: | ||
'''Publications''':XSS Attacks | '''Publications''':XSS Attacks | ||
− | |||
− | |||
− | |||
+ | ====Daniel Hsu==== | ||
+ | '''(Manager Security Service - North East Asia, Global Security, American Express) (2:30pm-3:00pm)''' | ||
'''Talk Title''': '''''From a user perspective, what are CSOs' real concerns?''''' | '''Talk Title''': '''''From a user perspective, what are CSOs' real concerns?''''' | ||
Line 115: | Line 115: | ||
'''Bio''': Daniel Hsu have been in corporate security professional field for over a decade. After his successful naval career, he has been the head and/or founder of the corporate security department for UPS (East Asia), FarEasTone Telecom (Corporate), Taipei 101 (Corporate) and American Express (North & East Asia). Daniel is a regular contributor and editorial advisor to several security professional magazines. He has his own column in Taiwan's ''Information Security Management'' magazine, and is the editor of the Chinese version ''Introduction to Security Management'' book. He is a veteran lecturer/speaker in several local and international security related conferences and seminars. He serves as the Chairperson of Taiwan Chapter, ASIS International since 2003. He has been elected and served as Steering Committee Member for Asia Crisis & Security Group since 2006. Daniel is the first Taiwanese who's been accredited the Certified Protection Professional (CPP) credential from ASIS International. Daniel holds MSc in Maritime Operations at LJMU, UK and EMBA in Risk Management at NCCU, Taiwan ROC. He is also a licensed naval engineer and airplane pilot. | '''Bio''': Daniel Hsu have been in corporate security professional field for over a decade. After his successful naval career, he has been the head and/or founder of the corporate security department for UPS (East Asia), FarEasTone Telecom (Corporate), Taipei 101 (Corporate) and American Express (North & East Asia). Daniel is a regular contributor and editorial advisor to several security professional magazines. He has his own column in Taiwan's ''Information Security Management'' magazine, and is the editor of the Chinese version ''Introduction to Security Management'' book. He is a veteran lecturer/speaker in several local and international security related conferences and seminars. He serves as the Chairperson of Taiwan Chapter, ASIS International since 2003. He has been elected and served as Steering Committee Member for Asia Crisis & Security Group since 2006. Daniel is the first Taiwanese who's been accredited the Certified Protection Professional (CPP) credential from ASIS International. Daniel holds MSc in Maritime Operations at LJMU, UK and EMBA in Risk Management at NCCU, Taiwan ROC. He is also a licensed naval engineer and airplane pilot. | ||
− | |||
− | ====Jack Yu (Editor-In-Chief, InfoSecurity Magazine Taiwan) (3:00pm-3:30pm) | + | |
+ | ====Jack Yu==== | ||
+ | '''(Editor-In-Chief, InfoSecurity Magazine Taiwan) (3:00pm-3:30pm)''' | ||
'''Talk Title''': '''''Live in Battle: The NetArmy and Cross-Straight Digital Warfare''''' | '''Talk Title''': '''''Live in Battle: The NetArmy and Cross-Straight Digital Warfare''''' | ||
− | |||
− | |||
− | |||
===Talk Session II: Current Best Practices and Solutions=== | ===Talk Session II: Current Best Practices and Solutions=== |
Revision as of 07:49, 30 September 2008
- 1 OWASP AppSec Asia 2007 - September 27th, 2007
- 2 OWASP AppSec Asia 2007 - Conference Schedule (September 27th)
- 3 Free Registration
- 4 Venue
- 5 Sponsors
OWASP AppSec Asia 2007 - September 27th, 2007
OWASP AppSec Asia 2007 - Conference Schedule (September 27th)
Opening Keynote
Wayne Huang
(Chair, OWASP Taiwan Chapter) (1:30pm-1:40pm)
Bio: Wayne Huang is first author of two award-winning security papers in the International WWW Conference (2003, 2004) and the co-author of "Computer Security in the 21st Century". Wayne is the founder and CEO of Armorize Technologies. He received the Microsoft Research Fellowship in 2005. He is a Ph.D. candidate at EE, National Taiwan University. He was the first author of many well-cited papers on web application security.
Opening Remark
Dr. Ching-Chi Hsu (Vice President, III Taiwan) (1:40pm-1:50pm)
Bio: Dr. Hsu was a professor of the Department of Information Engineering of National Taiwan University for several years and became the Chairman of the Department in 2000. After over 25 years serving at National Taiwan University, Dr. Hsu was promoted as the President of Kai Nan University. Nowadays, Dr. Hsu is the Executive Vice President of the Institute for Information Industry, which provides the innovative R&D, software technologies and interoperability standards for Taiwan ICT industries on fostering development of the ICT industry.
David Chang (Secretary General, Information Service Industry Association of R.O.C (CISA) Taiwan) (1:50pm-2:00pm)
Bio: N/A
Talk Session I: Changing Faces in Web Attacks
Jeremiah Grossman
Founder and CTO, WhiteHat Security) (2:00pm-2:30pm)
Talk Title: The Next Challenge to Web Security: Business Logic Flaws
Previous Talks:BlackHat Briefings, Defcon, ISACA, CSI, OWASP, Vanguard, ISSA
Publications:XSS Attacks
Daniel Hsu
(Manager Security Service - North East Asia, Global Security, American Express) (2:30pm-3:00pm)
Talk Title: From a user perspective, what are CSOs' real concerns?
Previous Talks: Asia Security Weeks, SecuTech Expo
Bio: Daniel Hsu have been in corporate security professional field for over a decade. After his successful naval career, he has been the head and/or founder of the corporate security department for UPS (East Asia), FarEasTone Telecom (Corporate), Taipei 101 (Corporate) and American Express (North & East Asia). Daniel is a regular contributor and editorial advisor to several security professional magazines. He has his own column in Taiwan's Information Security Management magazine, and is the editor of the Chinese version Introduction to Security Management book. He is a veteran lecturer/speaker in several local and international security related conferences and seminars. He serves as the Chairperson of Taiwan Chapter, ASIS International since 2003. He has been elected and served as Steering Committee Member for Asia Crisis & Security Group since 2006. Daniel is the first Taiwanese who's been accredited the Certified Protection Professional (CPP) credential from ASIS International. Daniel holds MSc in Maritime Operations at LJMU, UK and EMBA in Risk Management at NCCU, Taiwan ROC. He is also a licensed naval engineer and airplane pilot.
Jack Yu
(Editor-In-Chief, InfoSecurity Magazine Taiwan) (3:00pm-3:30pm)
Talk Title: Live in Battle: The NetArmy and Cross-Straight Digital Warfare
Talk Session II: Current Best Practices and Solutions
Mike Shema (Lead Security Researcher, Qualys) (4:00pm-4:30pm)
Talk Title: Automated Tools: Are They Any Good for Enterprises?
Previous Talks:BlackHat 2004, RSA 2005, IT Underground 2006, and SACIS 2007. Training at BlackHat conferences in the U.S. and Europe
Publications:Author of 9 best-selling books
Bio: Mr. Shema is the co-author of Hacking Exposed: Web Applications, The Anti-Hacker Toolkit, and the author of Hack Notes: Web Application Security. Mr. Shema worked for several years as a consultant and trainer at Foundstone where he conducted information security assessments across a variety of technologies and industries. He also worked at NT Objectives to develop assessment and mitigation strategies for all aspects of web application security. While his security background ranges across network penetration testing, wireless auditing, code review, and training, Mr. Shema primarily focuses on web application security. Mr. Shema is currently employed by Qualys, developing tools that automate the web application audit process.
Wayne Huang, (Founder and CEO, Armorize Technologies)(4:30pm-5:00pm)
Talk Title: Secure Web Developing using Static Analysis
Previous Talks: RSA, ACM/W3C WWW, IEEE DSN, IEEE ISSRE, Hacks in Taiwan
Publications: Security in the 21st Century, Several IEEE/ACM papers
Bio: Wayne Huang is first author of two award-winning security papers in the International WWW Conference (2003, 2004) and the co-author of "Computer Security in the 21st Century". Wayne is the founder and CEO of Armorize Technologies. He received the Microsoft Research Fellowship in 2005. He is a Ph.D. candidate at EE, National Taiwan University. He was the first author of many well-cited papers on web application security.
Round Table Panel Discussion (5:00pm-5:30pm)
Free Registration
Please email to [email protected] and provide the following information:
- Name:
- Company:
- Title:
- Email:
- Phone:
Venue
NTUH International Convention Center, Taipei, Taiwan
Sponsors
The following organizations are sponsors for this conference. If you are interested in sponsoring an OWASP conference, please contact OWASP at: conferences 'at' owasp.org.